ModSecurity is a powerful firewall for Apache web servers which is used to prevent attacks towards web applications. It tracks the HTTP traffic to a particular Internet site in real time and blocks any intrusion attempts as soon as it detects them. The firewall uses a set of rules to do this - as an illustration, attempting to log in to a script administrator area without success a few times sets off one rule, sending a request to execute a specific file that may result in accessing the site triggers another rule, etc. ModSecurity is one of the best firewalls available on the market and it will protect even scripts which aren't updated on a regular basis as it can prevent attackers from employing known exploits and security holes. Very thorough info about every intrusion attempt is recorded and the logs the firewall keeps are a lot more specific than the standard logs provided by the Apache server, so you could later analyze them and determine if you need to take more measures so as to improve the protection of your script-driven sites.

ModSecurity in Shared Hosting

ModSecurity can be found with each shared hosting solution that we provide and it's activated by default for any domain or subdomain which you add through your Hepsia Control Panel. If it disrupts any of your programs or you'd like to disable it for any reason, you'll be able to accomplish that through the ModSecurity area of Hepsia with just a click. You may also use a passive mode, so the firewall will discover potential attacks and maintain a log, but will not take any action. You can see comprehensive logs in the very same section, including the IP address where the attack originated from, exactly what the attacker attempted to do and at what time, what ModSecurity did, and so forth. For optimum security of our clients we use a set of commercial firewall rules blended with custom ones which are added by our system admins.